Developers guide
Chapter 8
Copyright © 2008-2013 Inverse inc.
Operating System Best Practices 65
Operating System Best Practices
Iptables
IPTables is now entirely managed by PacketFence. However, if you need to perform some custom rules,
you can modify conf/iptables.conf to your own needs. However, the default template should work
for most users.
Log Rotations
PacketFence can generate a lot of log entries in huge production environments. This is why we recommend
to use either logrotate or log4perl to periodically rotate your logs.
Logrotate (recommended)
This is the easiest way to rotate your logs. In fact, a working logrotate script is provided with the
PacketFence package. This script is located in /usr/local/pf/addons, and it’s configured to do a weekly
log rotation and keeping old logs with compression. Just add it to your existing logrotate cronjobs.
Log4perl
This log4perl way is a little more complex to achieve, but it is still quite simple. There are 3 packages
you need to get from RPMForge:
∏ perl-Log-Dispatcher
∏ perl-Log-Dispatcher-FileRotate
∏ perl-Date-Manip